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(54) Tide: APPARATUS AND METHOD FOR DATA COMMUNICATION 
(57) Abstract 

A method of communicating data from a first transmitting station to a selected second receiving station in a network of sta- 
tions adapted for communication with one another, said method comprising: locally storing a substantially unique key at each 
station, all the keys being known to users at all the stations ; locally storing a common key symmetric message ciphering first algo- 
rithm at each station; generating at the first station a worldng key as a predetermined representation of the unique key which 
identifies the intended recipient station; ciphering the data to be transmitted by use of said working key in said first algorithm; 
and transmitting said ciphered data, whereby to permit deciphering of said ciphered data by the selected second station. An ap- 
paratus, and network, for this method are also disclosed 
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APPARATUS AND MPTHOT) POR -DATA HO MMtrWTrATTOK 

Field of thft Invftntinn 

This invention relates to the communication of data between 
stations in a network of stations adapted for communication with 
one another. The invention is applicable primarily to digital 
electronic communication, for exan£>le the transmission of messages 
between facsimile transceivers, the {transmission of data between 
computers, electronic mail, and digitaj telephony. The data can be 
any data for example computer data,, the content of a message to 
be sent by fax (Le facsimile) or by electronic mail, or the content 
of a telephone conversation. 

Background to th* Tnvpntirm 

It is often desired to transmit private or confidential data. In a 
network of spaced-apart stations the communication lines between 
the stations may well be accessible to third parties, e.g hackers 
or tappers. With fax machines it is quite easy to send messages 
accidentally to the wrong destination. These problems become 
greater as the network becomes more extensive, for example the 
public telephone system. TJiere is therefore an existing need for a 
reliable means of enciphering data transmissions to make it 
difficult for hackers and othex .unintended ■ recipients to extract 
the original data from an enciphered, data transmission. 

Certain solutions to this problem are currently available, but many 
of these existing solutions fail to. meet desired criteria at one or 
other point. Ordinarily desired criteria are a reasonably low cost 
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and a low level of administration coupled with a high level of 
difficulty for an unintended recipient to decipher a ciphered 
transmission. Different users attach different priorities to these 
criteria. For example some commercial data and electronic fund 
5 transfer transactions among banks and between banks and their 

customers constitute valuable and confidential data, and in that 
case the level of difficulty presented to an unintended recipient 
must be such as to make it seriously uneconomic or unrealistically 
time-consuming to attempt to decipher the ciphered data. 

10 A further consideration is whether or not enciphering and 
deciphering are to take place on the fly, ie the plain message is 
enciphered at the output of the transmitter and deciphered at the 
input of the receiver. An alternative is to encipher a message and 
hold it on file, e,g in a computer memory, prior to transmission. 

15 The enciphered message can then be sent by modem or other 

means without adaptation to the technology of the communication 
channel between the stations. The received ciphered message can 
be stored in the receiver's computer memory and deciphered at a 
later time. It is usually convenient to encipher and decipher on 

20 the fly and this is obviously a necessary criterion for digital 
telephony applications. 

One presently used solution is to provide each station in the 
network with secret information concerning which cipher key is to 
be used for ciphering data to be transmitted between each pair of 

25 stations. This information has to be agreed and distributed in 

advance and kept secret, and therefore the administrative 
problems in a network of any size are formidable and the 
likelihood of loss of security is considerable. The information 
needs to be changed from time to time or after any leakage, 

30 adding to the administrative problems. It will be appreciated that 

if all the stations agree to use a common key then all users can 
read all- the data and one security lapse opens the entire network. 
If each pair of transmitters and receivers in a network of N 
stations wish to preserve mutual secrecy, the number of keys 
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required is N x (N-1J/2, i.e 4950 different keys for a network of 
100 stations. If different keys are required for a message from A 
to B and a message from B to A then the number of keys required 
is N x (N-l), i.e 9900 different keys for a network of 100 stations, 

5 Another existing proposal in the art is to replace the supposedly 

secret keys with public keys, and instead to require a prior 
separate communication from A to f B to enable both A and B to 
generate an agreed secret key specific to the occasion of 
transmitting a particular enciphered data message. The separate 

10 communication poses problems both administratively and as to 
potential loss of security. 

An object of the present invention is to provide an apparatus and 
method which takes into account the desired criteria and which 
mitigates the described disadvantages. 

15 Summary of the Invention 

According to the present invention there is provided a method of 
communicating data from a fir^t transmitting station to a selected 
second receiving station in a network of stations adapted for 
communication with one? another, characterised by said method 
20 comprising: 

locally storing a substantially unique key at each station, all 
the keys being known to users at all the stations; 

locally storing a common key symmetric message ciphering 
first algorithm at each station; 

25 generating at the first station a working key as a 

predetermined representation of the unique key which identifies 
the intended recipient station; 
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ciphering the data to be transmitted by use of said working 
key in said first algorithm; and 

transmitting said ciphered data, whereby to permit 
deciphering of said ciphered data by the selected second station. 

5 This method can be used for example for fax transmissions or 

digital telephony where the routine requirement for confidentiality 
is relatively low. 

According to the invention in another aspect there is provided a 
method of communicating data according to the aforementioned 
10 method characterised by said method also comprising: 

locally storing a common ciphering second algorithm at each 
station; 

generating at the first station a. transmission initiation 
request as a combination of the unique keys which identify 
15 respectively the first station and the selected second station 

intended to receive a data transmission from the first station; and 

ciphering said request by use of said second algorithm, 
whereby the ciphered request constitutes the working key. 

The invention further provides a method of gaining access to the 
20 data transmitted in enciphered form by communication method as 

disclosed in the immediately preceding paragraph, said method 
comprising: 

locally generating, at a station actually receiving the 
transmission signal, a working key by ciphering with said second 
25 algorithm a combination of the known unique keys which identify 

respectively the transmitting station and the local receiving 
station; and 
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applying said, first algorithm using said locally generated 
working key to said received transmission signal, whereby said 
transmission is deciphered to recreate said data only if said local 
receiving station has the. substantially unique key identifying the 
5 intended recipient station and can thereby locally generate a 

working key identical to the working key used at the transmitting 
station. 

In another aspect of the communication method, each station also 
locally stores a substantially unique membership key, all the 
10 membership keys being known to users at all the stations; and 

said transmission initiation request is generated as a 
combination of the unique, station key and the unique membership 
key of the first station fogether with the unique station key and 
the unique membership key of the.. intended recipient station, 

15 In this embodiment a station actually receiving a transmission 
signal can decipher the transmission to recreate the data only if 
said receiving station has both the unique station key and the 
unique membership key identifying the intended recipient station* 

In yet another aspect of the coMmtkniciatiori method, a common key 
20 symmetric ciphering third algorithni is locally stored at each 
station; a substantially Random key is enciphered by used of said 
working key and said third algorithta; said data to be transmitted 
is ciphered by use of said random idfr in said first algorithm; and 
said ciphered random key is transmitted together with the 
25 ciphered data as said trg&sfftisRion signal, whereby to permit local 

deciphering of the enciphered random key and consequently of 
the ciphered data substantially only by an intended recipient 
station* 



The third algorithm may be identical to the first algorithm. 
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The methods disclosed in the above paragraphs within this section 
permit the enforcement of successively higher levels of security 
and can be used for example for transmission of valuable or 
confidential data between main frame computers* 

5 The invention also provides, separately, the transmission and 

reception methods embodied in the communication methods 
disclosed above. 

The invention further provides a communication network for 
carrying out the communication methods described above as well 
10 as, separately, transmission and reception apparatus embodied in 

the communication network, and transceiver apparatus selectively 
operable in transmission or reception modes embodied in the 
communication network. 



The invention further provides apparatus for use with any such 
communication apparatus to enable the communication apparatus to 
carry out the disclosed methods. 



Yet further, the invention provides a method, and separately an 
apparatus, for communicating data substantially as described 
herein; and in certain embodiments with reference to, and as 
20 illustrated in, the accompanying drawings. 

Embodiments of the invention will now be described, by way of 
example, with reference to the drawings that follow; in which: 



Brief Description of th* win pa 



25 



Figure 1 is a flow chart summarising the operation of the third 
and fourth embodiments of the present invention in the 
transmission mode; and 
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Figure 2 is a flow chart summarising operation of the third and 
fourth embodiments of the present invention in the reception 
mode. 



Description of the Prpfp^H Km hodlmstits 

The first embodiment is applicable e.g to : fax transmissions, and 
also to electronic mail and digital telephony, where the routine 
requirement for confidentiality is relatively low. For fax, the 
ordinary requirement is to ensure that if the destination telephone 
number for a fax message is incorrectly dialled and the 
transmission is therefore received at the wrong receiver, the 
message is unintelligible at that wrong receiver. The first 
embodiment can solve this problem of protection from dialling 
errors. 

Each fax transceiver in the network- is provided with a tamper- 
proof control means such as a sealed box, board or integrated 
circuit connected to or embedded within the transceiver. The 
control means is selectively operable in transmission and reception 
modes and comprises a memory for storing a key and an 
algorithm, processing means for running the algorithm, means for 
reading a fax number and means, such as a keypad, allowing 
entry of a key such as a number or number and letter 
combination. If this embodiment is utilised by an original 
equipment manufacturer, the control means can be incorporated 
into the design of the fax transceiver, in which case the 
telephone/fax dialling keys can themselves serve the additional 
function of allowing entry of the key number. 

The memory in each control means stores a key which is unique to 
that control means and which . is suitably read from the 
transceiver as its own public telephone/fax number. This unique 
key is thus a public key and is known to users at all the 
stations. The memory in each control means also stores a common 
key symmetric message ciphering first; algorithm. A key symmetric 
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algorithm is a cipher which, in response to activation by a key, 
converts an intelligible stream of letters and numbers, i.e the 
message, into an unintelligible stream* and which also operates in 
reverse to convert the unintelligible stream back to the intelligible 
5 stream upon activation by an identical key. 

When a user at a first fax transceiver wishes to send a message 
he dials or keys in the public fax number of the intended 
recipient to make a line connection. The control means also reads 
this number and takes the last four digits as a working key. 

10 When the two stations are connected and have completed their 
introduction protocol and checked the line quality, the message is 
transmitted via the processor in the control means. The processor 
operates to cipher the data on the fly by use of the working key 
in the first algorithm. The recipient station can similarly use its 

15 control means to decipher the received data on the fly by use of 
the identical working key in its own stored first algorithm. The 
recipient's working key is identical because it is the last four 
digits of the recipient's own public fax number and is available in 
the control means in reception mode. 

20 Generally, in order to protect transmissions more strictly against 

dialling errors or interception, each station in the network which 
subscribes to an organised message ciphering facility is 
preferably also provided with a substantially unique membership 
key. The key may be valid for an indefinite term or for a fixed 

25 period against a charge, and then changed. The working key is 

then formed as the last four digits of the intended recipient's fax 
number together with the four digits of the intended recipient's 
membership key. The keypad allows entry of the intended 
recipient's membership key into the memory of the control means. 

30 The processor operates as before to encipher the data on the fly 
by use of the 8-digit working key in the first algorithm. Any 
dialling error will then result in the message being enciphered by 
use of a working key created from a combination of fax number 
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and membership key number which does not exist and therefore 
no recipient can decipher the ciphered transmission. 

The second embodiment is similar in principle to the first 
embodiment and is applicable to digital telephony. Each telephone 
handset is provided with' a similar control means to the first 
embodiment except that, for telephony, . the control means is 
adapted to operate simultaneously in send and receive modes and 
is adapted to switch f*bm an inactive to an active state upon 
reception of data to be received and data to be transmitted. The 
control means is preferably embodied in an integrated circuit 
contained within the telephone handset, and the telephone keypad 
then also serves to enter the keys required to initiate enciphering 
of a telephone conversation. 

The working key is formed as a combination of the call 
1? originator's unique public key (e.g the last portion of his 
telephone number) and nils Unique membership key together with 
the unique key and the unique membership key of the intended 
recipient. The unique keys : and the unique membership keys are 
all known to all subscribers to the telephone ciphering facility, 
and it will be appreciated that each unique key is associated with 
a specific unique membership key. The working key may then be 
used as described above in the stored first algorithm to encipher 
the call originator's conversation, or: other data he may wish to 
transmit over the telephone channel, on the fly. The correct 
intended recipient station can likewise decipher the transmitted 
enciphered conversation . on the fl& and can respond. It will be 
appreciated that the working key' formed at the responding station 
for use in creating a responding enciphered conversation is 
different from the call driginator's working key because the four 
keys used to create the working key are combined in a different 
succession. Thus the working key used for transmissions from A 
to B differs from the working key used for transmissions from B 
to A. 



20 
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The third and fourth embodiments will now be described with 
reference to Figures 1 and 2; these Figures may be understood 
using the identification table that follows: 

roENTTFTRATTOK TATST/R 

5 Figure 1 

1 Input receiver's station public key. 

2 Input receiver's membership key. 

3 Input any additional agreed key. 

4 Generate transmission initiation request. 

1° 5 Use second algorithm and transmission initiation 

request to generate working key. 

6 Generate random key (if used). 

7 Use third algorithm and working key to 
encipher the random key. 

15 8 Transmit enciphered random key. 

9 Use first . (message) algorithm and either the 
working key or the random key to encipher the 
message. 

10 Transmit the enciphered message. 
20 Figure 2 

11 Input transmitter's station public key. 
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12 Input transmitter's membership key. 

13 Input any additional agreed key. 

14 Generate the transmission initiation request. 

1 5 Use the second algorithm and the transmission 
5 initiation request to generate the working key. 



16 



Input the received enciphered random key (if 
used). 



Use the third, algorithm and the working key to 
decipher the random key. 

Use the. first {message) algorithm and either the 
working ' key or the random key to decipher the 
received message. 

The third embodiment is applicable; e.g to digital telephony 
electronic mail or . da±a transmission between computers, for 

15 example, where a higher level of security is required. In this 

embodiment the working key is not simply a combination of the 
keys as described above,, but is an enciphered version thereof. 
Each control means of each telephone or station in the network is 
further provided with a locally stored common ciphering second 

20 algorithm. 

When a conversation, or other data transmission (see Figure 1), is 
required the call originator generates a transmission initiation 
request comprising a combination of the unique keys which 
identify respectively the call originator's telephone and the 
25 intended recipient's telephone and preferably also together with 
unique membership keys of the call originator and of the intended 
recipient. The transmission initiation request is then enciphered 
by use of the second algorithm whereby the enciphered request 
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constitutes the working key. The working key is then used in the 
first algorithm to encipher the data on the fly as before. 

It will be appreciated that yet a further key can be added to the 
combination used in forming the working key in any of the above 
described embodiments. The further key may be regarded as an 
addition to the membership key. The further key would be for 
example a number known only to a selected group of persons from 
among those who might be users of the receiving fax or telephone 
apparatus. The receiving station (see Figure 2) would then only 
operate to decipher the incoming enciphered message if a person 
from the selected group had previously attended and keyed in the 
further key. The further key must have been agreed between 
transmitter and receiver in a previous communication of any kind. 
In the case of a fax message the received enciphered message can 
be held in computer memory in ciphered form until the authorised 
person with the further agreed key is available. 

The fourth embodiment is applicable to communication between 
main frame digital computers, for example, where a very high level 
of security is required. In this embodiment a working key is 
formed as described in relation to the third embodiment. A random 
number generator is operated to provide a random number. The 
random number is then itself enciphered by using the working 
key in a third algorithm to produce a ciphered random key. The 
third algorithm is a common key symmetric algorithm and is locally 
stored at each station. The. third algorithm may be the same as 
the first algorithm. The data to be transmitted is then enciphered 
by use of the random key in the first algorithm and the ciphered 
random key is itself transmitted together with the transmitted 
ciphered data (see Figure 1). 

The intended recipient station locally generates its own working 
key and deciphers the transmitted ciphered random key by use of 
the working key in the locally stored third algorithm. The random 
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key is then available for use in deciphering the transmitted 
ciphered data (see Figure 2). 

In all the described embodiments the data to be transmitted is 
enciphered by use of a ''key in the f£rst algorithm. The key is of 
5 sufficient length as to. be capable of producing a large number of 

variants, preferably greater than 1 x 10 16 , 

The working key is, in the .higher -security embodiments, produced 
by enciphering a combination of inputted keys by means of a 
second algorithm. The second algorithm is preferably a fixed key 

10 transformation algorithm, the fixed key being chosen from a very 
large number of possible variants, preferably greater than 1 x 
10 30 . The second algorithm is not a kfey symmetric algorithm since 
reversibility is not required. Eabh station has the available 
information to produce the necessary working key when required 

15 and when called by a station desiring to transmit data thereto. 

The second algorithm thus requires a one-way transformation only 
and can accordingly be selected by those skilled in the art to be 
sufficiently difficult as to make it seriously uneconomic or 
unrealistically time-consuming tor attempt to decipher the captured 

20 data. 
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CLAIMS; 

1* A method of communicating data from a first transmitting 
station to a selected second receiving- station in a network of 
stations adapted for communication with one another, said method 
5 comprising: 

locally storing a substantially unique key at each station, all 
the keys being known to users at all the stations; 

locally storing a common key symmetric message ciphering 
first algorithm at each station; 

10 generating at the first station a working key as a 

predetermined representation of the unique key which identifies 
the intended recipient station; 

ciphering the data to be transmitted by use of said working 
key in said first algorithm; and 

15 transmitting said ciphered data, whereby to permit 

deciphering of said ciphered data by the selected second station, 

2- A method of communicating data according to Claim 1, 
characterised by said method also comprising: 

locally storing a common ciphering second algorithm at each 
20 station; 

generating at the first station a transmission initiation 
request as a combination of the unique keys which identify 
respectively the first station and the selected second station 
intended to receive a data transmission from the first station; 

25 ciphering said request by use of said second algorithm, 

whereby the ciphered request constitutes the working key. 



WO 91/12680 



PCT/GB91/00227 



15- 



3, A method of communicating data according to Claim 2, 
characterised in that each station also locally stores a 
substantially unique membership key, all the membership keys 
being known to users at all the statioM; 1 and 

said transmission initiation request is generated as a 
combination of the unique station key and the unique membership 
key of the first station together with the unique station key and 
the unique membership key of the intended recipient station. 

4. A method of communicating data according to Claim 2 or 
Claim 3 t characterised in that a common key symmetric ciphering 
third algorithm is locally:/ stored at each station; a substantially 
random key is enciphered by use of - said working key and said 
third algorithm; said data to be transmitted is ciphered by use of 
said random key in said first algorithm; and said ciphered random 
key is transmitted together with the ciphered data as said 
transmission signal, whereby to perriiit local deciphering of the 
enciphered random key and consequently of the ciphered data 
substantially only by an intended recipient station. 

5. A method x>t communicating data according to Claim 4, 
characterised in that the third algorithm is identical to the first 
algorithm. 

6, A method of gaining access to the data transmitted in 
enciphered form by communication method according to Claim 2, 
characterised by said method comprising: 

locally generating, at a station actually receiving the 
transmission signal, a working key by ciphering with said second 
algorithm a combination of the known unique keys which identify 
respectively the transmitting station and the local receiving 
station; and 
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applying said first algorithm using said locally generated 
working key to said received transmission signal, whereby said 
transmission is deciphered to recreate said data only if said local 
receiving station has the substantially unique key identifying the 
5 intended recipient station and can thereby locally generate a 

working key identical to the working key used at the transmitting 
station* 

7« A method of gaining access to the data transmitted in 
enciphered form by a communication method according to Claim 3, 
10 characterised by said method comprising: 

locally generating, at a station actually receiving the 
transmission signal, a working key by ciphering with said second 
algorithm a combination of the known unique keys, which identify 
respectively the transmitting station and the local receiving 
15 station, and the known unique membership keys identifying 
respectively the transmitting station and the local receiving 
station; and 

applying said first algorithm using said locally generated 
working key to said received transmission signal, whereby said 

20 transmission is deciphered to recreate said data only if said local 

receiving station has the substantially unique key identifying the 
intended recipient station and the substantially unique membership 
key of the intended recipient station, and can thereby locally 
generate a working key identical to the working key used at the 

25 transmitting station. 

8. A data transmission apparatus, characterised in that the 
apparatus is suitable for carrying out the communication methods 
according to any one of Claims 1 to 5. 

9. A . data reception apparatus, characterised in that the 
30 apparatus is suitable for carrying out the communication methods 

according to any one of Claims 1 to 5. 
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10. A communication network characterised in that the network 
is suitable for carrying out the communication methods according 
to any one of Claims 1 to 5. 
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